<div id="content">
    <h3>Laatste artikelen</h3>

    <div id="nieuws">
    </div>
    <a title="Nieuws" class="meer" href="?p=nieuws">meer nieuws...</a>
    <br/>

    <!-- Dit gedelte wordt via een database geladen -->
    <div id="stages">
        <h4>Nieuwste stages</h4>
        <hr>
        <ul>
            <li>
                <a href="#">Stagiaire Logistiek in Dordrecht</a>
            </li>
            <li>
                <a href="#">Event Manager in Amsterdam </a>
            </li>
        </ul>
        <a title="Stages" class="meer" href="#">meer stages...</a>
        <br/>
    </div>

    <div id="advertence">
        <h4>Deze stagebedrijven zoeken op geoplaza.nl naar stagiairs:</h4>
        <hr>
        <img alt="widesheim logo" src="images/windesheim.png">
    </div>

</div>

<?php
// Clear the error message
$error_msg = "";
require_once('./config/config.php');
// Start the session
session_start();

// If the user isn't logged in, try to log them in
if (!isset($_SESSION['user_id'])) {
    if (isset($_POST['submit'])) {
        // Connect to the database
        $dbc = mysqli_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_DATABASE);

        // Grab the user-entered log-in data
        $user_username = mysqli_real_escape_string($dbc, trim($_POST['username']));
        $user_password = mysqli_real_escape_string($dbc, trim($_POST['password']));

        if (!empty($user_username) && !empty($user_password)) {
            // Look up the username and password in the database
            $query = "SELECT studentID, email FROM studentprofiel WHERE email = '$user_username' AND wachtwoord = SHA('$user_password')";
            $data = mysqli_query($dbc, $query);

            if (mysqli_num_rows($data) == 1) {
                // The log-in is OK so set the user ID and username session vars (and cookies), and redirect to the home page
                $row = mysqli_fetch_array($data);
                $_SESSION['user_id'] = $row['studentID'];
                $_SESSION['username'] = $row['email'];
                setcookie('user_id', $row['studentID'], time() + (60 * 60 * 24 * 30));    // expires in 30 days
                setcookie('username', $row['email'], time() + (60 * 60 * 24 * 30));  // expires in 30 days
                $home_url = 'http://' . $_SERVER['HTTP_HOST'] . dirname($_SERVER['PHP_SELF']) . '/index.php';
                header('Location: ' . $home_url);
            } else {
                // The username/password are incorrect so set an error message
                $error_msg = 'Sorry, you must enter a valid username and password to log in.';
            }
        } else {
            // The username/password weren't entered so set an error message
            $error_msg = 'Sorry, you must enter your username and password to log in.';
        }
    }
}

// If the session var is empty, show any error message and the log-in form; otherwise confirm the log-in
if (empty($_SESSION['user_id'])) {
    echo '<p class="error">' . $error_msg . '</p>';
?>
    <div id="login">
        <form method="post" action="<?php echo $_SERVER['PHP_SELF']; ?>">
            <table >
                <tr>
                    <td>Gebruikersnaam:</td><td><input type="text" name="username" value="<?php if (!empty($user_username))
        echo $user_username; ?>" /></td>
            </tr>
            <tr>
                <td>Wachtwoord:</td><td><input type="password" name="password"/></td>
            </tr>
            <tr>
                <td><input type="submit" name="submit" value="Inloggen" /></td>
            </tr>
        </table>
        <br/>
    </form>
</div>

<a class="sidebarNav" href="index.php?p=werkgever">Registreren werkgevers</a>
<a class="sidebarNav" href="student/index.php?p=makeprofile"> Registreren student</a>

<?php
}
else {
    // Confirm the successful log-in
    echo('<div id="login"><p>Je bent ingelogd als ' . $_SESSION['username'] . '</p>');
    echo('<form method="post" action="logout.php">');
    echo('<table><td><tr>');
    echo('<input type="submit" name="submit" value="Uitloggen" class="uitloggen" />');
    echo('</td></tr></table>');
    echo('</form></div>');
    echo('<a class="sidebarNav" href="student/index.php?p=viewprofile">Mijn profiel</a>');
}
?>
